2024-05-30_30e058fbcb5e5c833f7c4a1a90f2073c_icedid_magniber_silence

Sharing

Copy URL

Twitter E-mail

General

Target

2024-05-30_30e058fbcb5e5c833f7c4a1a90f2073c_icedid_magniber_silence
Size

6.8MB
MD5

30e058fbcb5e5c833f7c4a1a90f2073c
SHA1

97398e9a194143594268adbbd9707021cfe2ceca
SHA256

eede5c3c6de7ae8db8d605ef397e740989c94aae1c3f01fcbecbb440cc393205
SHA512

ca7c5dbc848a150a95d55bdcb9e9b974f2a258aea5f1c386996269a5e13fe9cf0265c029b5ffbc3b3a2332c6c9c271f322091c21ebabc69aba165278c7ac7136
SSDEEP

196608:tW/jqbjBsT4Rk+KOV4++uEojDIg9Cbk/VJdpw:QC5HDDjw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-05-30_30e058fbcb5e5c833f7c4a1a90f2073c_icedid_magniber_silence

Files

2024-05-30_30e058fbcb5e5c833f7c4a1a90f2073c_icedid_magniber_silence
.exe windows:5 windows x86 arch:x86

c9e4345b4dddd6a0b01f855463677177

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\ASW\AutomationNet\Trunk\dbi_rel\PVITransfer.pdb

Imports

credui

CredUIPromptForCredentialsA

mpr

WNetAddConnection2A

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

pvicom

?PviServerClient@@YAHPAKH@Z
ord20
ord6
ord18
ord59
ord33
ord58
ord50
ord53
ord12
ord21
ord24
ord3
ord23
ord17
ord32
ord39
ord34
ord4
ord35
ord5
ord42
ord48
ord51
ord49
ord19
ord56
ord26
ord54
ord52
ord22
ord16
ord2
ord28

pvitransutil

PTL_GetLoggerNames
PTL_UploadLoggers
PTL_CloseConnection
PTL_Convert
?PTL_Cancel@@YGJJ@Z
PTL_OpenConnection

kernel32

ReplaceFileA
GetUserDefaultLCID
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GlobalFlags
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GetAtomNameA
GetThreadLocale
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
GetCurrentProcess
LoadLibraryExA
GetProfileIntA
lstrcmpiA
GetVolumeInformationA
GetStringTypeExA
GetACP
GetOEMCP
GetCPInfo
FindResourceExW
SearchPathA
FileTimeToLocalFileTime
GetFileAttributesExA
GetFileSizeEx
LocalFileTimeToFileTime
SetErrorMode
LocalLock
LocalUnlock
ExitProcess
GetModuleHandleExW
AreFileApisANSI
GetSystemTimeAsFileTime
HeapReAlloc
IsDebuggerPresent
IsProcessorFeaturePresent
GetCommandLineA
GetSystemInfo
VirtualAlloc
VirtualQuery
RaiseException
RtlUnwind
ExitThread
HeapSize
HeapQueryInformation
SetStdHandle
GetFileType
FatalAppExitA
GetTempFileNameA
SetUnhandledExceptionFilter
GetStartupInfoW
CreateSemaphoreW
GetStdHandle
SetConsoleCtrlHandler
IsValidCodePage
GetStringTypeW
GetTimeZoneInformation
FindFirstFileExW
GetDriveTypeW
CreateDirectoryW
SetFilePointerEx
GetConsoleMode
ReadConsoleW
GetConsoleCP
GetFileAttributesExW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
OutputDebugStringW
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetFileInformationByHandle
PeekNamedPipe
GetFullPathNameW
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateFileW
WriteConsoleW
SetEnvironmentVariableA
VerifyVersionInfoA
VerSetConditionMask
SystemTimeToFileTime
VirtualProtect
ResumeThread
SuspendThread
CreateEventA
SetEvent
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetSystemDirectoryW
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
DecodePointer
EncodePointer
GlobalAddAtomA
lstrcpyA
FindResourceA
FreeResource
CompareStringA
GlobalDeleteAtom
LoadLibraryExW
GetCurrentThread
InterlockedExchange
SetFileTime
GetFullPathNameA
UnhandledExceptionFilter
GetDiskFreeSpaceA
LoadLibraryW
lstrcmpA
GetModuleHandleW
GetModuleFileNameW
GetVersion
OutputDebugStringA
GetFileAttributesW
SetLastError
GlobalFree
GlobalSize
PurgeComm
SetCommTimeouts
SetCommState
SetupComm
FlushFileBuffers
GetCommState
GetCommTimeouts
GetWindowsDirectoryA
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
UnmapViewOfFile
GetCurrentProcessId
GetLocalTime
GlobalUnlock
GlobalLock
InterlockedDecrement
InterlockedIncrement
SetCurrentDirectoryA
MulDiv
GlobalAlloc
HeapFree
GetProcessHeap
HeapAlloc
SetThreadPriority
TerminateThread
GetModuleFileNameA
LocalFree
FormatMessageA
GetVersionExA
GetPrivateProfileIntA
WritePrivateProfileStringA
TerminateProcess
OpenProcess
CreateProcessA
GetExitCodeProcess
WaitForSingleObject
FreeLibrary
GetModuleHandleA
GetProcAddress
LoadLibraryA
GetCurrentThreadId
FileTimeToSystemTime
GetFileTime
GetFileSize
SetFilePointer
ReadFile
WriteFile
CreateFileA
GetSystemDirectoryA
GetTickCount
RemoveDirectoryA
FindNextFileA
CreateDirectoryA
GetFileAttributesA
GetDiskFreeSpaceExA
GetDriveTypeA
GetLogicalDriveStringsA
MoveFileA
FindClose
FindFirstFileA
GetTempPathA
GetLastError
DeleteFileA
MultiByteToWideChar
CloseHandle
GetExitCodeThread
Sleep
CreateThread
SetFileAttributesA
GetPrivateProfileStringA
InitializeCriticalSectionAndSpinCount
CopyFileA
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
GetCurrentDirectoryA
lstrlenA
lstrlenW
GetShortPathNameA

user32

HideCaret
InvertRect
GetWindowRgn
GetDCEx
GetTabbedTextExtentA
IsIconic
TrackMouseEvent
IsRectEmpty
UnionRect
SetRect
LockWindowUpdate
GetUpdateRect
ReleaseCapture
SetCapture
BringWindowToTop
GetMenuItemInfoA
DestroyMenu
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetAsyncKeyState
MapVirtualKeyA
GetKeyNameTextA
WindowFromPoint
SetCursor
ShowOwnedPopups
TranslateMessage
GetMessageA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
IsDialogMessageA
SetWindowTextA
ScrollWindowEx
SendDlgItemMessageA
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetTopWindow
GetClassLongA
SetWindowLongA
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
GetForegroundWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
MapVirtualKeyExA
GetWindowPlacement
GetKeyboardLayout
CharNextA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamA
DestroyWindow
GetMonitorInfoA
MonitorFromPoint
CopyRect
FillRect
SetWindowRgn
RegisterWindowMessageA
MapDialogRect
GetWindow
SetWindowContextHelpId
SetWindowPos
GetLastActivePopup
GetWindowThreadProcessId
IsWindowEnabled
PostQuitMessage
SystemParametersInfoA
OffsetRect
MessageBeep
RedrawWindow
IsZoomed
RemoveMenu
GetMenuState
GetMenuStringA
PtInRect
DrawFrameControl
GetWindowLongA
GetFocus
IsChild
GetClipboardData
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
IsClipboardFormatAvailable
InsertMenuA
RegisterClassA
GetClassInfoA
GetClassNameA
LoadBitmapW
GetSysColor
InflateRect
EnumChildWindows
SetRectEmpty
GetMenuItemID
GetMenuItemCount
GetSystemMetrics
AppendMenuA
CreatePopupMenu
WaitMessage
GetCursorPos
GetClientRect
InvalidateRect
GetParent
EnableMenuItem
GetSystemMenu
ReleaseDC
GetDC
DeleteMenu
GetSubMenu
LoadMenuW
LoadImageA
GetWindowRect
LoadStringW
FindWindowA
LoadIconW
MessageBoxA
DestroyIcon
LoadIconA
KillTimer
IsCharLowerA
CreateMenu
WindowFromDC
GetTabbedTextExtentW
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
GetComboBoxInfo
InSendMessage
SendNotifyMessageA
GetDoubleClickTime
SetMenuDefaultItem
GetMenuDefaultItem
CharUpperBuffA
FrameRect
SetTimer
SetForegroundWindow
EnableWindow
ScreenToClient
IsWindow
CopyIcon
SubtractRect
SetCursorPos
UnregisterClassA
GetDialogBaseUnits
GetNextDlgGroupItem
SetWindowPlacement
InvalidateRgn
PostMessageA
GetDesktopWindow
SendMessageA
UpdateWindow
RegisterClipboardFormatA
RealChildWindowFromPoint
CopyAcceleratorTableA
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetClassInfoExA
GetKeyboardState
PostThreadMessageA
LoadImageW
LoadBitmapA
DestroyCursor
ModifyMenuA
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
EnableScrollBar
UpdateLayeredWindow
GetIconInfo
CopyImage
IsMenu
DestroyAcceleratorTable
DrawIcon
EnumDisplayMonitors
SetLayeredWindowAttributes
DrawIconEx
DrawFocusRect
DrawStateA
DrawEdge
SetParent
SetClassLongA
GetSysColorBrush
NotifyWinEvent
LoadCursorW
LoadCursorA
IntersectRect
CreateWindowExA
CharUpperA
GetPropA

gdi32

CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
DeleteDC
Escape
ExcludeClipRect
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
SetStretchBltMode
ModifyWorldTransform
SetColorAdjustment
StartDocA
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
TextOutA
ExtTextOutA
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateCompatibleBitmap
CombineRgn
GetMapMode
SetRectRgn
DPtoLP
CreateDIBPatternBrushPt
Ellipse
GetBkColor
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetTextMetricsA
CreateDIBSection
LPtoDP
RoundRect
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
GetViewportOrgEx
Rectangle
GetDIBits
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
GetRgnBox
OffsetRgn
EnumFontFamiliesExA
GetCurrentObject
CreatePalette
GetPaletteEntries
GetCharWidthA
StretchDIBits
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextExtentPointA
GetTextExtentPoint32W
GetWindowOrgEx
GetTextFaceA
GetNearestPaletteIndex
GetSystemPaletteEntries
FillRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
CloseMetaFile
CreateMetaFileA
DeleteMetaFile
SetPixelV
SetROP2
SetPolyFillMode
GetLayout
CreateCompatibleDC
BitBlt
PatBlt
CreateRectRgnIndirect
CreateBitmap
SetTextColor
SetBkColor
CreateDCA
CopyMetaFileA
CreateFontA
FrameRgn
CreateSolidBrush
CreateRoundRectRgn
SetTextJustification
SetTextAlign
DeleteObject
GetDeviceCaps
CreateFontIndirectA
GetObjectA
CreateEllipticRgn
GetTextExtentPoint32A
SetLayout
SetMapMode
SetGraphicsMode
SetMapperFlags
SetBkMode
SetTextCharacterExtra

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesA
ClosePrinter
GetJobA
OpenPrinterA

advapi32

RegQueryValueA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExW
RegEnumValueA
RegEnumKeyExA
GetFileSecurityA
SetFileSecurityA
RegCreateKeyExA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegSetValueA
RegSetValueExA

shell32

SHAddToRecentDocs
SHGetSpecialFolderPathA
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
DragQueryFileA
DragFinish
ShellExecuteExA
SHGetFileInfoA
ExtractIconA
DragAcceptFiles
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHAppBarMessage

comctl32

ImageList_ReplaceIcon
ImageList_AddMasked
InitCommonControlsEx
ImageList_GetIcon

shlwapi

PathFindFileNameA
PathRemoveExtensionA
PathRemoveFileSpecW
PathIsUNCA
PathStripToRootA
PathFindExtensionA
StrFormatKBSizeA

uxtheme

GetThemeColor
DrawThemeBackground
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeText
GetWindowTheme
GetThemeSysColor
DrawThemeParentBackground
OpenThemeData
CloseThemeData
GetCurrentThemeName

ole32

OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
OleIsRunning
CreateBindCtx
CoTreatAsClass
CoTaskMemAlloc
StringFromCLSID
CoCreateInstance
SetConvertStg
CoTaskMemFree
GetRunningObjectTable
GetHGlobalFromILockBytes
OleGetIconOfClass
OleSetContainedObject
OleSaveToStream
OleSave
OleLoad
OleCreateFromFile
OleCreateLinkToFile
OleCreateStaticFromData
OleCreateLinkFromData
CreateDataAdviseHolder
CoUninitialize
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CoInitialize
CoInitializeEx
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
CoDisconnectObject
OleGetClipboard
PropVariantCopy
StringFromGUID2
OleQueryCreateFromData
OleQueryLinkFromData
CoGetMalloc
CreateOleAdviseHolder
CoCreateGuid
OleCreateFromData
OleCreate
WriteClassStm
CreateItemMoniker
CreateGenericComposite
OleRun
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleRegEnumVerbs
OleRegGetMiscStatus
CreateFileMoniker
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
OleLockRunning
OleSetMenuDescriptor
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
CoRevokeClassObject
CoRegisterClassObject
CoGetClassObject
ReadClassStg
CreateStreamOnHGlobal

oleaut32

VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
VarDecFromStr
OleCreateFontIndirect
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
VarCyFromStr
SafeArrayGetDim
SafeArrayRedim
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
SysReAllocStringLen
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SysStringLen
SysAllocString
VarDateFromStr
VariantChangeType
SysAllocStringByteLen
SysStringByteLen
SysFreeString
VariantClear
VariantInit
SysAllocStringLen
SystemTimeToVariantTime
GetErrorInfo
SafeArrayGetElemsize
VariantTimeToSystemTime
SetErrorInfo
CreateErrorInfo

oledlg

ord8

gdiplus

GdiplusShutdown
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc

ws2_32

socket
WSAStartup
WSACleanup
gethostbyaddr
ioctlsocket
closesocket
inet_addr
gethostbyname
WSAGetLastError
recvfrom
sendto

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 814KB - Virtual size: 813KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9e4345b4dddd6a0b01f855463677177

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

credui

mpr

version

pvicom

pvitransutil

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

oleacc

imm32

winmm

Sections

.text Size: 3.1MB - Virtual size: 3.1MB

.rdata Size: 814KB - Virtual size: 813KB

.data Size: 109KB - Virtual size: 141KB

.rsrc Size: 2.7MB - Virtual size: 2.7MB

.text
Size: 3.1MB - Virtual size: 3.1MB

.rdata
Size: 814KB - Virtual size: 813KB

.data
Size: 109KB - Virtual size: 141KB

.rsrc
Size: 2.7MB - Virtual size: 2.7MB